Overview

overview

7

Static

static

3

YoudaoDict_crsky.exe

windows7-x64

7

YoudaoDict_crsky.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

Acrobat2Dict.dll

windows7-x64

3

Acrobat2Dict.dll

windows10-2004-x64

3

CrashRpt.dll

windows7-x64

3

CrashRpt.dll

windows10-2004-x64

3

InstallDaemon.exe

windows7-x64

3

InstallDaemon.exe

windows10-2004-x64

3

Monitor.exe

windows7-x64

3

Monitor.exe

windows10-2004-x64

3

RunDict.exe

windows7-x64

7

RunDict.exe

windows10-2004-x64

7

TextExtrac...32.dll

windows7-x64

3

TextExtrac...32.dll

windows10-2004-x64

3

TextExtrac...64.dll

windows7-x64

1

TextExtrac...64.dll

windows10-2004-x64

1

WordBook.exe

windows7-x64

3

WordBook.exe

windows10-2004-x64

3

WordStroke...32.dll

windows7-x64

3

WordStroke...32.dll

windows10-2004-x64

3

WordStroke...64.dll

windows7-x64

1

WordStroke...64.dll

windows10-2004-x64

1

XDLL.dll

windows7-x64

3

XDLL.dll

windows10-2004-x64

3

background.html

windows7-x64

3

background.html

windows10-2004-x64

3

lookup.js

windows7-x64

3

lookup.js

windows10-2004-x64

3

Analysis

  • max time kernel
    149s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    26-08-2024 05:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    TextExtractorImpl64.dll

  • Size

    177KB

  • MD5

    59c4961b75f6f1ad78e2f82cb8443a12

  • SHA1

    25699d9d1f6c00e9561648037aabb3a25b1cbe79

  • SHA256

    771599f59b9197b4493ee210e2c0d849d6238833ace50bb4cd4d1d17894066f1

  • SHA512

    9e389619f04cc9d0fd1d89d2cad0ef65a3c577241c74be91daa7465e9fb1417adb97b783fed600eaaa3cf071e47441a0e0c853d6e262502af3119d1631379e5f

  • SSDEEP

    3072:/69CEKw4yW9E9haLssdDa2QWZ6wB31RtnOhYNf8Q+1jdMaW6G+vgHhcl3Lb33IF:i8EKwO9EpsI2EAlrUYNfa5ko33IF

Score
1/10

Malware Config

Signatures

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\TextExtractorImpl64.dll,#1
    1⤵
      PID:2384

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads